Vulnerability Details CVE-2019-18989
A partial authentication bypass vulnerability exists on Mediatek MT7620N 1.06 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which would allow an attacker to discern information or potentially modify data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.8
References
Products affected by CVE-2019-18989
-
cpe:2.3:h:mediatek:mt7620n:-
-
cpe:2.3:o:mediatek:mt7620n_firmware:1.06